Athletica WR API - Privacy Policy

Athletica WR API - Privacy Policy

Effective Date: November 10, 2025 Last Updated: November 10, 2025 Provider: Athletica Inc. and Andrea Zignoli

1. Introduction

This Privacy Policy describes how Athletica Inc. and Andrea Zignoli (“Athletica,” “we,” “us,” or “our”) collects, uses, and protects information when you use the Athletica WR API (the “Service”).

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.

2. Information We Collect

2.1 Client Data

When you use the Service, you submit training data (“Client Data”) that includes:

  • Athlete identifiers (e.g., player_id, session_id)
  • Time-series training data (timestamps and power values)
  • Historical performance data

Ownership: You retain all ownership rights to Client Data. We process Client Data solely to provide the Service.

2.2 Usage Information

We automatically collect:

  • API request logs (timestamp, endpoint, request volume)
  • Error logs and diagnostic information
  • API key usage and authentication events
  • Service performance metrics

2.3 Account Information

We collect:

  • Email address for account communication
  • Organization name (if applicable)
  • Billing information (processed by third-party payment providers)

3. How We Use Information

3.1 To Provide the Service

We use Client Data to:

  • Compute Workout Reserve (WR) metrics
  • Process API requests and return results
  • Maintain and improve Service performance

3.2 Aggregated Research

We may use aggregated and anonymized data derived from the Service for:

  • Research and development
  • Algorithm improvements
  • Statistical analysis
  • Academic publications

Anonymization: Aggregated data will not identify you, your organization, or individual athletes.

3.3 Service Operations

We use usage information to:

  • Monitor API usage and enforce rate limits
  • Detect and prevent fraud or abuse
  • Troubleshoot technical issues
  • Generate usage reports and invoices

3.4 Communications

We use contact information to:

  • Send service notifications and updates
  • Provide customer support
  • Send billing invoices
  • Notify you of Terms of Service changes

4. Data Sharing and Disclosure

4.1 No Sale of Data

We do not sell, rent, or trade Client Data or personal information to third parties.

4.2 Service Providers

We may share information with trusted third-party service providers who assist in:

  • Cloud infrastructure (AWS)
  • Payment processing
  • Customer support tools

These providers are contractually obligated to protect your information and use it only for providing services to us.

We may disclose information if required by:

  • Law, regulation, or legal process
  • Court order or subpoena
  • Government or regulatory request
  • Protection of our rights, property, or safety

4.4 Business Transfers

If Athletica is involved in a merger, acquisition, or sale of assets, Client Data may be transferred as part of that transaction. We will notify you of any such change in ownership.

5. Data Security

5.1 Security Measures

We implement industry-standard security practices including:

  • Encryption of data in transit (HTTPS/TLS)
  • API key authentication
  • Access controls and logging
  • Regular security assessments

5.2 No Guarantee

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

5.3 Your Responsibility

You are responsible for:

  • Keeping API keys confidential
  • Using strong passwords
  • Monitoring your account for unauthorized access
  • Immediately reporting security breaches to andrea@athletica.ai

6. Data Retention

6.1 Client Data

We retain Client Data only as long as:

  • Your account is active
  • Necessary to provide the Service
  • Required by law or for legitimate business purposes

6.2 Deletion Upon Termination

When your account is terminated:

  • We will delete Client Data within 30 days
  • Backup copies may persist for up to 90 days
  • Aggregated/anonymized data may be retained indefinitely

6.3 Request Deletion

You may request deletion of Client Data at any time by contacting andrea@athletica.ai. We will comply within 30 days unless retention is required by law.

7. Your Rights

7.1 Access and Portability

You have the right to:

  • Access Client Data submitted to the Service
  • Export Client Data in machine-readable format
  • Request copies of your account information

7.2 Correction

You may request correction of inaccurate account information.

7.3 Deletion

You may request deletion of:

  • Client Data
  • Your account
  • Personal information (subject to legal retention requirements)

7.4 Opt-Out

You may opt out of:

  • Non-essential communications (marketing emails)
  • Aggregated data research (though this may limit Service functionality)

7.5 GDPR Rights (EU Residents)

If you are in the European Union, you have additional rights under GDPR:

  • Right to object to processing
  • Right to restrict processing
  • Right to lodge a complaint with a supervisory authority

8. International Data Transfers

The Service is hosted on AWS infrastructure, which may process data in:

  • United States
  • European Union (eu-central-1)
  • Other AWS regions

By using the Service, you consent to the transfer of information to countries outside your jurisdiction, which may have different data protection laws.

9. Children’s Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect information from children. If you believe we have collected information from a child, please contact us immediately.

10. Cookies and Tracking

The API Service does not use cookies or tracking technologies. However:

  • We log API requests for operational purposes
  • Our website (if applicable) may use cookies as described in a separate website privacy policy

11. Changes to Privacy Policy

We may update this Privacy Policy from time to time. Changes will be:

  • Posted with a new “Last Updated” date
  • Notified to you via email
  • Effective 30 days after posting

Continued use of the Service after changes take effect constitutes acceptance of the updated Privacy Policy.

12. Contact Us

For privacy-related questions, requests, or concerns:

Athletica Inc. and Andrea Zignoli Email: andrea@athletica.ai Website: athletica.ai

To exercise your data rights or request information: Email: andrea@athletica.ai Subject Line: “Privacy Request - [Your Account Email]”

We will respond to privacy requests within 30 days.

13. Data Protection Officer

For GDPR-related inquiries: Email: andrea@athletica.ai Subject Line: “GDPR Inquiry”

14. Compliance

Athletica is committed to complying with:

  • General Data Protection Regulation (GDPR) for EU data subjects
  • California Consumer Privacy Act (CCPA) for California residents
  • Other applicable privacy laws and regulations

Copyright © 2025 Athletica Inc. and Andrea Zignoli. All Rights Reserved.

Proprietary and Confidential